Technical Tip: FQDN support for IPv6 Address Object
Description
This article describes the historical introduction of FQDN-type Address Objects for IPv6 on the FortiGate.
Scope
FortiGate.
Solution
In FortiOS v5.6 and earlier, IPv6 address objects on the FortiGate (config firewall address6) did not support FQDN-type objects, so only IPv6 Address objects of type IP prefix and range could be created:
FortiGate # config firewall address6
FortiGate (address6) # edit IPv6_Test
FortiGate (IPv6_Test) # set type ?
ipprefix Uses the IP prefix to define a range of IPv6 addresses.
iprange Range of IPv6 addresses between two specified addresses (inclusive).
As of FortiOS v6.0 and later, support was added for FQDN-type Address objects, as well as Dynamic and Template-type objects:
FortiGate # config firewall address6
FortiGate (address6) # edit IPv6_Test
FortiGate (IPv6_Test) # set type ?
ipprefix Uses the IP prefix to define a range of IPv6 addresses.
iprange Range of IPv6 addresses between two specified addresses (inclusive).
fqdn Fully qualified domain name.
dynamic Dynamic address object for SDN.
template Template.
Related document: